Title :
HIPernet: a decentralized security infrastructure for large scale grid environments
Author :
Laganier, J. ; Primet, Pascale Vicat-Blanc
Author_Institution :
DoCoMo Commun. Labs. Eur., Munich, Germany
Abstract :
Security in grid environments appeals for fundamental primitives like the secure establishment of dynamic and isolated virtual trust domains. The security mechanisms currently used are generally based on a public key infrastructure global to the grid environment, and a mix of global and local access control policies used to make an authorization decision. Such approaches do not scale well with the number of participating domains and entities. In this paper, we propose a decentralized approach for securing grid environments that better cope with their inherently distributed nature. The combination of network and operating system visualization (supernets) with the host identity protocol (HIP) and simple public key infrastructure (SPKI) delegation/authorization certificates allows to create virtual trust domains onto multiple shared computer nodes connected by an untrusted network. We analyze how this approach adapts the vast diversity of trust relationships in the real world and has a better scalability with respect to the number of entities involved.
Keywords :
authorisation; certification; grid computing; public key cryptography; HIPernet; access control policies; authorization certificates; authorization decision; decentralized security infrastructure; dynamic virtual trust domain; grid environments; host identity protocol; isolated virtual trust domain; network visualization; operating system visualization; public key infrastructure; resource isolation; supernets; trust relationship; Access control; Authorization; Computer networks; Hip; Large-scale systems; Operating systems; Protocols; Public key; Security; Visualization;
Conference_Titel :
Grid Computing, 2005. The 6th IEEE/ACM International Workshop on
Print_ISBN :
0-7803-9492-5
DOI :
10.1109/GRID.2005.1542735
